Senior GRC Analyst
About The Position
Wealth.com is the industry’s leading estate planning platform, empowering more than 1,000 wealth management firms to modernize how they talk about estate planning with their clients. As the only tech-led, end-to-end platform built specifically for financial institutions, Wealth.com enables firms to drive scale, efficiency, and measurable client impact. Trusted by some of the largest names in finance, Wealth.com combines proprietary AI, robust security, and deep technological and legal expertise to serve the full range of client needs, from foundational plans to the most sophisticated estate strategies. The company has been widely recognized for innovation and leadership, winning Top Estate Planning Technology and Top Estate Planning Implementation at the 2025 WealthManagement.com Industry Awards, being named the 2024 Best Technology Provider in the Trust category, and earning #1 in estate planning market share in the 2025 Kitces AdvisorTech Study. Our team is fundamental to our standing as the leading estate planning platform. We cultivate a collaborative and supportive environment, fostering innovation and making Wealth.com a truly enjoyable workplace. Wealth.com is proud to be certified as a Great Place to Work for 2025. We are seeking a highly motivated and experienced Senior Governance, Risk, and Compliance (GRC) Analyst to join our team. In this pivotal role, you will help safeguard our high-impact operations, manage risk, and ensure we adhere to the complex regulatory landscape of the fintech industry. You will act as a subject matter expert, translating complex requirements into actionable controls and promoting a security-first culture across the organization.
Requirements
- 5+ years in Information Security with a focus on GRC or security auditing in a regulated industry.
- Expertise in GRC frameworks such as NIST CSF, ISO 27001, SOC 2, PCI DSS, and relevant financial regulations.
- Understanding of enterprise technology, cloud environments, network security, and data protection.
- Strong analytical, problem-solving, and communication skills.
Nice To Haves
- Professional certifications like CISSP, CISA, CRISC, or CISM are a plus.
- Experience with GRC tools such as ServiceNow, Archer, or MetricStream.
- A Bachelor's degree in a relevant field.
Responsibilities
- Manage information security and third-party risk assessments and develop mitigation strategies.
- Lead internal and external audits, including evidence collection and remediation.
- Develop and maintain security standards and policies in line with regulatory requirements.
- Collaborate with internal teams to integrate security and risk management practices.
- Monitor and report on security issues, policy violations, and non-compliance.
Benefits
- Competitive salary.
- Hybrid work arrangement if located in the Phoenix or New York area; otherwise, fully remote. We also meet together in person several times a year.
- Excellent medical, dental, and vision insurance options, with low-cost premium structures that demonstrate our commitment to offering great value to our employees.
- 100% company-paid basic life insurance, short-term and long-term disability insurance.
- 100% paid parental leave upon eligibility.
- Company equity managed through Carta.
- 401k with match and 100% vesting upon hire.
- Flexible PTO in an environment where taking time off to relax or recharge is supported and encouraged.
- Take time off for holidays—and yes, your birthday counts too. Celebrate, relax, and recharge without thinking twice.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Number of Employees
101-250 employees
